IXP Automation. Amsterdam, September Nick Hilliard. Chief Technical Officer Internet Neutral Exchange Association Company Limited by Guarantee
|
|
- Bonnie Moore
- 6 years ago
- Views:
Transcription
1 1 IXP Automation Amsterdam, September 2017 Nick Hilliard Chief Technical Officer Internet Neutral Exchange Association Company Limited by Guarantee
2 Background Original purpose of IXP Manager was to support route server config builds Designed with a structure capable of storing all participant switch configuration tokens Reticent about using database for network configuration Cost / return ratio wasn t right Concerns about how to control configuration deployment Poor tool support for interfacing with network devices
3 Toolchain Problems Traditional server automation tools could not interface with network devices Tools of the era: RANCID, SSH, bash + perl scripts No framework mechanisms available
4 Roll Forward to 2017 Multiple automation approaches possible Server automation frameworks can interface with network devices Network Operating Systems now have APIs and / or API models Some NOSs support multiple APIs Rationale changes Too much repetitive configuration: Taking the operator out of operations Long term cost reduction
5 Phase 1 Operational Goals Configure all IXP participant edge ports Speed, dot1q framing, LAG ports, layer 2 filters Configure IXP core Interfaces, BGP, VXLAN configuration Ready for service to handle peering LAN forklift upgrade to Arista kit in 2017Q1
6 Phase 2 Strategic Goals Use initial automation process to learn how to do this properly Build functionality into IXP Manager: user interface, database, export presentation Ensure that abstraction model is usable across different network devices and different organisations Release as open source
7 Approaches Openflow YANG Vendor API Abstraction Level Low High Mid Range Vendor Support Version Dependent In Development Variable Portability High High Low Cross-Platform Low Currently low Needs Abstraction Complexity High Mid Low
8 Practical Approach YANG: only well supported on tiny number of NOSs Openflow: too low level Decided to use NAPALM Integrates with vendor APIs at the network device interface Integrates with Ansible and SaltStack at control + provisioning DB interface Long term support is likely to be good
9 Data Presentation Most vendor APIs are simply a better-structured CLI mandatory authentication and security XML or JSON formatting commands are issued, replies received Drawbacks Some CLIs cannot be automated due to e.g. non-idempotent command support Many APIs / NOSs do not support basic functions like merge / commit / rollback API support is often NOS version specific
10 NAPALM Support [2] Hand-crafted by the API as the device doesn t support the feature. [3] Not supported but emulated. Check caveats. [4] Check the caveats, this is a dangerous operation in this device. [5] For merges, the diff is simply the merge config itself. See caveats. [6] No for merges. See caveats. EOS JunOS IOS-XR FortiOS NXOS IOS Pluribus PANOS MikroTik VyOS Config Replace Yes Yes Yes Yes Yes Yes No Yes No Yes Config Merge Yes Yes Yes Yes Yes Yes No Yes No Yes Config Compare Yes Yes Yes [2] Yes [2] Yes [5] Yes No Yes No Yes Atomic Change Yes Yes Yes No [3] Yes/No [6] Yes Yes Yes/No [6] No Yes Rollback Yes [3] Yes Yes Yes Yes/No [6] Yes No Yes No Yes
11 INEX Kit Manifest INEX Brocade FI Brocade NI Extreme Arista EOS Cumulus INEX Lifecycle EOL EOL Mid life Early life Pre-Deploy API Support None Some YANG XOS v21+ Excellent Linux Openflow No v1.3 v1.3 v1.3 No NAPALM No No *Not yet Yes No Assessment No plans No plans Partial support Full Support Full Support
12 Vi vs Emacs Ansible vs SaltStack Lengthy evaluation process Careful consideration of Linux and FreeBSD Ansible and SaltStack pros / cons. Rationale resulted in sound engineering decision:
13 Vi vs Emacs Ansible vs SaltStack Lengthy evaluation process Careful consideration of Linux and FreeBSD Ansible and SaltStack pros / cons. Rationale resulted in sound engineering decision: We Like SaltStack!
14 Data Flow - Traditional NOS IXP Manager Database Data Export Controller YAML REST Presentation Salt Master NAPALM Engine Salt Proxy Network Device API Running Configuration
15 Data Flow - Cumulus Linux IXP Manager Database Data Export Controller YAML REST Presentation Salt Master SaltStack State Engine Running Configuration
16 IXP Manager Data Presentation API version 4 exports YAML via REST calls Exported data roughly breaks down as: Vlans Layer 2 interface information Layer 3 interface information Information required for routed core (bgp + vxlan)
17 Sample YAML - name: swp2 type: edge description: "Packetloss Services Ltd" dot1q: yes shutdown: yes autoneg: yes speed: lagindex: 1 lagmaster: no fastlacp: yes virtualinterfaceid: 334 vlans: - number: 12 macaddress: - "54:1e:56:35:77:d0"
18 Sample YAML - name: swp49 type: core description: "edge1-edge2" dot1q: yes shutdown: no stp: yes cost: 100 autoneg: yes speed: lagindex: 1010 lagmaster: no virtualinterfaceid: 342 vlans: - number: 12 - number: 32
19 Data Templating YAML Data Jinja Templates Configuration
20 Sample YAML {% if pillar.get( interfacescust', {}) is iterable %} {% for iface in pillar.get('interfacescust', {}) %} default interface {{ iface.name }} interface {{ iface.name }} load-interval 30 {% if iface.description length > 0 %} description {{ iface.description }} {% else %} no description {% endif %} [...] {% endfor %} {% endif %}
21 Sample YAML {% if iface.speed == 100 %} speed forced 100full {% elif iface.speed == 1000 %} {% if iface.autoneg is defined and iface.autoneg == False %} speed forced 1000full {% else %} speed auto {% endif %} {% elif iface.speed == %} {# speed auto #} {% elif iface.speed == %} speed forced 40gfull {% elif iface.speed == %} speed forced 100gfull {% endif %}
22 Modelling Problems Different switches use different data models for configuration For example, Link Aggregation Brocade uses physical interfaces only Extreme has a separate configuration item: enable sharing XX Others devices use a virtual interface (Port-ChannelX, bondy, etc) But not all the semantics are the same (channel-group vs bond-slaves) Lessons learned: ensure your data model is flexible enough to support substantial semantic differences between device config models, and that it can be extended easily
23 Operational Problems Beware of upgrades! O/S package management vs pip install Jinja 2.7 -> 2.9 broke lots of templates undefined variables are no longer evaluated as False iterating over an undefined variable returns an error rather than skipping eval Need to be careful with SaltStack upgrades
24 Jinja 2.7 {% for iface in pillar.get('interfacescust', {}) %} interface {{ iface.name }} {% if iface.shutdown %} shutdown {% endif %} {% endfor %}
25 Jinja 2.9 {% if pillar.get('interfacescust', {}) is iterable %} {% for iface in pillar.get('interfacescust', {}) %} interface {{ iface.name }} {% if iface.shutdown is defined and iface.shutdown %} shutdown {% endif %} {% endfor %} {% endif %}
26 :42:01,662 [salt.loader][critical][794] Failed to load grains defined in grain file napalm.model in function <function model at 0x80d0fec08>, error: Traceback (most recent call last): File "/usr/local/lib/python2.7/site-packages/salt/loader.py", line 722, in grains else: File "/usr/local/lib/python2.7/site-packages/salt/grains/napalm.py", line 174, in model return {'model': _get_grain('model', proxy=proxy)} File "/usr/local/lib/python2.7/site-packages/salt/grains/napalm.py", line 102, in _get_grain grains = _retrieve_grains_cache(proxy=proxy) File "/usr/local/lib/python2.7/site-packages/salt/grains/napalm.py", line 71, in _retrieve_grains_cache GRAINS_CACHE = proxy['napalm.get_grains']() File "/usr/local/lib/python2.7/site-packages/salt/loader.py", line 1088, in getitem self.missing_modules = {} # mapping of name -> error File "/usr/local/lib/python2.7/site-packages/salt/utils/lazy.py", line 101, in getitem raise KeyError(key) KeyError: 'napalm.get_grains'
27 :48:19,254 [salt.minion][critical][85409] Unexpected error while connecting to localhost Traceback (most recent call last): File "/usr/local/lib/python2.7/site-packages/salt/minion.py", line 864, in _connect_minion yield minion.connect_master(failed=failed) File "/usr/local/lib/python2.7/site-packages/tornado/gen.py", line 1055, in run value = future.result() File "/usr/local/lib/python2.7/site-packages/tornado/concurrent.py", line 238, in result raise_exc_info(self._exc_info) File "/usr/local/lib/python2.7/site-packages/tornado/gen.py", line 1063, in run yielded = self.gen.throw(*exc_info) File "/usr/local/lib/python2.7/site-packages/salt/minion.py", line 1042, in connect_master yield self._post_master_init(master) File "/usr/local/lib/python2.7/site-packages/tornado/gen.py", line 1055, in run value = future.result() File "/usr/local/lib/python2.7/site-packages/tornado/concurrent.py", line 238, in result raise_exc_info(self._exc_info) File "/usr/local/lib/python2.7/site-packages/tornado/gen.py", line 1069, in run yielded = self.gen.send(value) File "/usr/local/lib/python2.7/site-packages/salt/minion.py", line 3124, in _post_master_init self.functions['saltutil.sync_all'](saltenv=self.opts['environment']) File "/usr/local/lib/python2.7/site-packages/salt/modules/saltutil.py", line 850, in sync_all ret['clouds'] = sync_clouds(saltenv, False, extmod_whitelist, extmod_blacklist) File "/usr/local/lib/python2.7/site-packages/salt/modules/saltutil.py", line 652, in sync_clouds ret = _sync('clouds', saltenv, extmod_whitelist, extmod_blacklist) File "/usr/local/lib/python2.7/site-packages/salt/modules/saltutil.py", line 99, in _sync saltenv = _get_top_file_envs() File "/usr/local/lib/python2.7/site-packages/salt/modules/saltutil.py", line 81, in _get_top_file_envs top = st_.get_top() File "/usr/local/lib/python2.7/site-packages/salt/state.py", line 3089, in get_top tops = self.get_tops() File "/usr/local/lib/python2.7/site-packages/salt/state.py", line 2787, in get_tops saltenv File "/usr/local/lib/python2.7/site-packages/salt/fileclient.py", line 189, in cache_file return self.get_url(path, '', True, saltenv, cachedir=cachedir) File "/usr/local/lib/python2.7/site-packages/salt/fileclient.py", line 495, in get_url result = self.get_file(url, dest, makedirs, saltenv, cachedir=cachedir) File "/usr/local/lib/python2.7/site-packages/salt/fileclient.py", line 1044, in get_file hash_server, stat_server = self.hash_and_stat_file(path, saltenv) TypeError: 'bool' object is not iterable
28 Idempotent Configuration Merge {% if bgp.local_as is number %} no router bgp {{ bgp.local_as }} router bgp {{ bgp.local_as }} no bgp default ipv4-unicast bgp always-compare-med [...] {% endif %} {% for iface in pillar.get('interfacescust', {}) %} default interface {{ iface.name }} interface {{ iface.name }} load-interval 30 [...] {% endfor %}
29 Deployment Workflow NAPALM supports config test, config load, commit and rollback SaltStack and Ansible support different deployment environments e.g. lab / production, etc Good idea to use these mechanisms on production systems
30 # salt swi1-pwt1-1 saltutil.refresh_pillar [...] root@saltmaster:~ # salt swi1-pwt1-1 net.load_template \ template_path=/srv/napalm/templates/eos/templates configure_cust_interfaces.j2 test=true swi1-pwt1-1: already_configured: False comment: Configuration discarded. -500,7 10 permit 30:b6:4f:e4:f8:f6 00:00:00:00:00:00 any! mac access-list l2acl-ixp-viid deny any any + 10 permit 01:23:45:67:89:ab 00:00:00:00:00:00 any! mac access-list l2acl-ixp-viid deny any any loaded_config: result: True root@saltmaster:~ #
31 # salt swi1-pwt1-1 net.load_template \ template_path=/srv/napalm/templates/eos/templates configure_cust_interfaces.j2 commit=false swi1-pwt1-1: already_configured: False comment: -500,7 10 permit 30:b6:4f:e4:f8:f6 00:00:00:00:00:00 any! mac access-list l2acl-ixp-viid deny any any + 10 permit 01:23:45:67:89:ab 00:00:00:00:00:00 any! mac access-list l2acl-ixp-viid deny any any loaded_config: result: True root@saltmaster:~ #
32 # salt swi1-pwt1-1 net.load_template \ template_path=/srv/napalm/templates/eos/templates configure_cust_interfaces.j2 commit=true swi1-pwt1-1: already_configured: False comment: -500,7 10 permit 30:b6:4f:e4:f8:f6 00:00:00:00:00:00 any! mac access-list l2acl-ixp-viid deny any any + 10 permit 01:23:45:67:89:ab 00:00:00:00:00:00 any! mac access-list l2acl-ixp-viid deny any any loaded_config: result: True root@saltmaster:~ #
33 # salt swt-cwt1-edge1 state.apply cumulus.configure_bgp saltenv=lab test=true swt-cwt1-edge1: ID: /etc/frr/frr.conf Function: file.managed Result: None Comment: The file /etc/frr/frr.conf is set to be changed Started: 08:51: Duration: ms Changes: diff: ,12 neighbor pg-ebgp-ipv4-ixp description ebgp IXP session policy neighbor pg-ebgp-ipv4-ixp timers 3 10 neighbor pg-ebgp-ipv4-ixp capability extended-nexthop - neighbor remote-as neighbor peer-group pg-ebgp-ipv4-ixp - neighbor description swt-cwt1-edge2 - neighbor remote-as neighbor peer-group pg-ebgp-ipv4-ixp - neighbor description swt-cwt1-edge2 neighbor remote-as neighbor peer-group pg-ebgp-ipv4-ixp neighbor description swt-cwt1-mlnx
34 [...] ID: /etc/frr/frr.conf Function: service.running Name: frr Result: None Comment: Service is set to be reloaded Started: 08:51: Duration: ms Changes: Summary for swt-cwt1-edge Succeeded: 5 (unchanged=2, changed=1) Failed: Total states run: 5 Total run time: s root@saltmaster:~ # root@saltmaster:~ # salt swt-cwt1-edge1 state.apply cumulus.configure_bgp saltenv=lab test=false [...]
35 Phase 1 Results Configure all IXP participant edge ports [in service using production DB] Configure IXP core [in service using pilot model data source] Handled INEX LAN1 forklift upgrade successfully Operations workflow changed to be safer, simpler and more reliable Single source of authoritative data about network configuration
36 Phase 2 Progress Data abstraction model is complete, needs refactoring IXP Manager: coding almost complete, needs refactoring Templating for NAPALM: Arista: 100%, Cumulus: 95% Release as open source: planned in 2017Q4 Creation of operational workflow procedures
37 Operations Then Configure on IXP Manager Manually log into switches Find mistakes years later
38 Operations Now Configure on IXP Manager Refresh Salt Pillar Data Deploy
39 THANK YOU Any Questions? visit us online at inex.ie
NAPALM Documentation. Release 1. David Barroso
NAPALM Documentation Release 1 David Barroso November 03, 2015 Contents 1 Supported Network Operating Systems 3 2 Documentation 5 2.1 Tutorials................................................. 5 2.2 Supported
More informationJunos Platform Automation (JAUT)
Junos Platform Automation (JAUT) Course No: EDU-JUN-JAUT Length: 5 Days Schedule and Registration Course Overview This five-day course provides students with Junos platform automation knowledge through
More informationDell EMC Networking Saltstack Integration Documentation
Dell EMC Networking Saltstack Integration Documentation Release 1.0 Dell EMC Networking Team Sep 07, 2018 Table of Contents 1 Introduction 1 1.1 Salt....................................................
More informationNETWORK AUTOMATION TUTORIAL. David Barroso
NETWORK AUTOMATION TUTORIAL David Barroso HOW TO NAVIGATE THIS TUTORIAL? Press left and right to change sections. Press up and down to move within sections. Press? anytime for
More informationNetwork configuration management at CERN
Arkadiy Shevrikuko Stefan Stancu Network configuration management at CERN 10/8/2018 1 Outline Network overview Current solution: cfmgr Overview of open-source platforms Evolution plan 10/8/2018 2 Network
More informationHEAnet & IOS-XR Four Years & Many, Many Packets of Experience. Brian Nisbet NOC Manager, HEAnet
HEAnet & IOS-XR Four Years & Many, Many Packets of Experience Brian Nisbet NOC Manager, HEAnet A Little History HEAnet deployed the CRS1 platform in 2007 Lots of IOS operational discussion, very little
More informationAll participants will work within their groups in pairs. Each group has three routers and three switches to work with.
Layer 3 - Exercises All participants will work within their groups in pairs. Each group has three routers and three switches to work with. The lab is divided into four components: 1. Static Routing 2.
More informationFlask Web Development Course Catalog
Flask Web Development Course Catalog Enhance Your Contribution to the Business, Earn Industry-recognized Accreditations, and Develop Skills that Help You Advance in Your Career March 2018 www.iotintercon.com
More informationIXP Manager Workshop Installation, Configuration
1 IXP Manager Workshop Installation, Configuration Nick Hilliard Chief Technical Officer Internet Neutral Exchange Association Company Limited by Guarantee IXP Manager Workshop IXP Manager Walk-Through
More informationThe Single Source of Truth for Network Automation. Andy Davidson March 2018 CEE Peering Days 2018, DKNOG 8, UKNOF 40
The Single Source of Truth for Network Automation Andy Davidson March 2018 CEE Peering Days 2018, DKNOG 8, UKNOF 40 Automation Journey Reporting Most network engineers begin their
More informationManaging the Management Switches. Erik Ruiter SURFsara Cumulus Meetup Amsterdam 2017
Managing the Management Switches Erik Ruiter SURFsara Cumulus Meetup Amsterdam 2017 Outline 1. Old vs new Situation 2. Used technologies (Ansible / Cumulus) 3. Ansible Examples 4. Results / Whats next?
More informationOrchestration via. Patrick Pierson, Systems Engineer -
Orchestration via Foreman Patrick Pierson, Systems Engineer - http://patrickpierson.us What is Configuration Management? Configuration Management (CM) is a systems engineering process for establishing
More informationBGP Large Communities RFC8092
1 BGP Large Communities RFC8092 Dublin, March 2017 Nick Hilliard Chief Technical Officer Internet Neutral Exchange Association Company Limited by Guarantee BGP EXAMPLES BGP community example: gw2#show
More informationNetwork Automation using modern tech. Egor Krivosheev 2degrees
Network Automation using modern tech Egor Krivosheev 2degrees Key parts of network automation today Streaming Telemetry APIs SNMP and screen scraping are still around NETCONF RFC6241 XML encoding Most
More informationMy network deploys. How about yours? EOS APIs. Andrei Dvornic
My network deploys itself How about yours? EOS APIs Andrei Dvornic andrei@arista.com 1 EOS fundamentals Standard Linux kernel Unique multi-process state sharing architecture that separates networking state
More informationCould IXPs Use OpenFlow To Scale? Ivan Pepelnjak Chief Technology Advisor NIL Data Communications
Could IXPs Use OpenFlow To Scale? Ivan Pepelnjak (ip@ipspace.net) Chief Technology Advisor NIL Data Communications Disclaimer The presentation describes potential future solution that could be implemented
More informationFeature Information for BGP Control Plane, page 1 BGP Control Plane Setup, page 1. Feature Information for BGP Control Plane
Feature Information for, page 1 Setup, page 1 Feature Information for Table 1: Feature Information for Feature Releases Feature Information PoAP diagnostics 7.2(0)N1(1) Included a new section on POAP Diagnostics.
More informationInternet Engineering Task Force (IETF) Request for Comments: Category: Best Current Practice. NTT N. Hilliard INEX March 2018
Internet Engineering Task Force (IETF) Request for Comments: 8327 BCP: 214 Category: Best Current Practice ISSN: 2070-1721 W. Hargrave LONAP M. Griswold 20C J. Snijders NTT N. Hilliard INEX March 2018
More informationChapter 17 BGP4 Commands
Chapter 17 BGP4 Commands NOTE: This chapter describes commands in the BGP configuration level, which is present on HP devices that support IPv4 only. For information about BGP commands and configuration
More informationNetDevOps Style Configuration Management for the Network
NetDevOps Style Configuration Management for the Network What it means for network engineers, and why we should care? Stuart Clark Network Automation Evangelist Cisco Devnet Game Plan Virlutils Network
More informationHow to Access and Use Quagga Shell using Avi CLI
Page 1 of 5 How to Access and Use Quagga Shell using Avi CLI view online Background Quagga is a network routing software suite providing implementations of various routing protocols. Avi Vantage uses Quagga
More informationIntroduction to OpenConfig
DEVNET-1775 Introduction to OpenConfig Santiago Álvarez, TME Cisco Spark How Questions? Use Cisco Spark to communicate with the speaker after the session 1. Find this session in the Cisco Live Mobile App
More informationNEW TOOLS. ngage vaping. MATT GRISWOLD
NEW TOOLS ngage vaping MATT GRISWOLD grizz@20c.com WHAT IS NGAGE? Command line tool to interface with network devices, evolved from internal tools. https://github.com/20c/ngage http://ngage.readthedocs.io/en/latest/
More informationEvent Driven network automation
Event Driven network automation Openlab Technical Workshop 2018 Salvador Ferrer sferrer@extremenetworks.com January 2018 1 Agenda StackStorm event driven automation What can be automated? 2 3 StackStorm
More informationOpenstack Networking Design
Openstack Networking Design Pete Lumbis CCIE #28677, CCDE 2012::3 Cumulus Networks Technical Marketing Engineer 1 Openstack Overview Takes a pool of servers Deploys s (OS, disk, memory, CPU cores, etc)
More informationHow to Access and Use Quagga Shell using Avi CLI
Page 1 of 5 How to Access and Use Quagga Shell using Avi CLI view online Background Quagga is a network routing software suite providing implementations of various routing protocols. Avi Vantage uses Quagga
More informationData Center Automation
Data Center Automation About Arista Networks 10/40/100GbE Networks for the Virtualized Cloud & Data Center Founded in 2004 Shipping Since Mid-2008 ANET, IPO (NYSE) in June 2014 1000+ Employees More than
More informationNetFlow Data Collection
This section contains the following topics:, on page 1 NetFlow Collection Architectures, on page 1 Centralized NetFlow Configuration Workflow, on page 6 DNF NetFlow Configuration Workflow, on page 11 Configure
More informationNetDevOps Style Configuration Management for the Network
DEVNET-3616 NetDevOps Style Configuration Management for the Network Hank Preston, NetDevOps Evangelist ccie 38336, R/S @hfpreston Cisco Spark How Questions? Use Cisco Spark to communicate with the speaker
More information2015/07/23 23:32 1/8 More ibgp and Basic ebgp
2015/07/23 23:32 1/8 More ibgp and Basic ebgp More ibgp and Basic ebgp Objective: Connect your ISP to a Transit provider and the Internet Exchange Point using a combination of ISIS, internal BGP, and external
More informationUsing the vrealize Orchestrator Salt Plug- in
Using the vrealize Orchestrator Salt Plug- in Using the vrealize Orchestrator Salt Plug- In 1.0 Using the vrealize Orchestrator Salt Plug- In 1.0 tells you how to install, configure, and use the VMware
More informationCisco Network Programmability for the Enterprise NPEN v1.0
Course Overview This course teaches how to automate common Cisco enterprise platforms such as IOS-XE and IOS-XR routers as well as ASA firewalls. This course also includes coverage of the automation capabilities
More informationGetting Started with Linux on Cumulus Networks
White Paper by David Davis, ActualTech Media Getting Started with Linux on Cumulus Networks In this Paper Linux at the Core... 2 Latest and Greatest Networking Protocols... 2 Network Command Line Utility
More informationBGP Graceful Shutdown
The feature reduces or eliminates the loss of traffic along a link being shut down for maintenance. Routers always have a valid route available during the convergence process. This feature is used primarily
More informationCumulus Linux What s New and Different since (Technical) Last Updated: June 18, 2015
v Cumulus Linux 2.5.3 What s New and Different since 2.5.0 (Technical) Last Updated: June 18, 2015 What s New and Different in Cumulus Linux 2.5.3 vs. 2.5.0 BFD additions BGP improvements Hardware watchdog
More informationWhat is NetDevOps? Why? Leslie Carr RIPE71
What is NetDevOps? Why? Leslie Carr RIPE71 Who Is Leslie? Operations Engineer @lesliegeek Google Craigslist Twitter Wikimedia Foundation (Wikipedia) Cumulus Networks Who Are You? Are you a network engineer?
More informationVendor: Alcatel-Lucent. Exam Code: 4A Exam Name: Alcatel-Lucent Border Gateway Protocol. Version: Demo
Vendor: Alcatel-Lucent Exam Code: 4A0-102 Exam Name: Alcatel-Lucent Border Gateway Protocol Version: Demo QUESTION 1 Upon the successful establishment of a TCP session between peers, what type of BGP message
More informationJunos Ansible Modules Documentation
Junos Ansible Modules Documentation Release 2.1.1.dev0 Juniper Networks, Inc. Jun 08, 2018 Contents 1 juniper_junos_system 3 2 juniper_junos_srx_cluster 7 3 juniper_junos_pmtud 11 4 juniper_junos_ping
More informationOpen SDN Controller Applications
The following topics describe the five applications that Open SDN Controller provides to facilitate the day-to-day administration of your network: BGPLS Manager, page 1 Inventory Manager, page 3 Model
More informationConnecting to a Service Provider Using External BGP
Connecting to a Service Provider Using External BGP First Published: May 2, 2005 Last Updated: August 21, 2007 This module describes configuration tasks that will enable your Border Gateway Protocol (BGP)
More informationProvisioning Overlay Networks
This chapter has the following sections: Using Cisco Virtual Topology System, page 1 Creating Overlays, page 2 Creating Network using VMware, page 4 Creating Subnetwork using VMware, page 4 Creating Routers
More informationBGP and the Internet
BGP and the Internet Transit and Internet Exchange Points 1 Definitions Transit carrying traffic across a network, usually for a fee traffic and prefixes originating from one AS are carried across an intermediate
More informationNexus 9000/3000 Graceful Insertion and Removal (GIR)
White Paper Nexus 9000/3000 Graceful Insertion and Removal (GIR) White Paper September 2016 2016 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 1 of 21
More informationContents. EVPN overview 1
Contents EVPN overview 1 EVPN network model 1 MP-BGP extension for EVPN 2 Configuration automation 3 Assignment of traffic to VXLANs 3 Traffic from the local site to a remote site 3 Traffic from a remote
More informationConfiguring Advanced BGP
CHAPTER 6 This chapter describes how to configure advanced features of the Border Gateway Protocol (BGP) on the Cisco NX-OS switch. This chapter includes the following sections: Information About Advanced
More informationITBraindumps. Latest IT Braindumps study guide
ITBraindumps http://www.itbraindumps.com Latest IT Braindumps study guide Exam : 400-151 Title : CCIE Data Center v2.0 Vendor : Cisco Version : DEMO Get Latest & Valid 400-151 Exam's Question and Answers
More information2016/01/17 04:05 1/19 Basic BGP Lab
2016/01/17 04:05 1/19 Basic BGP Lab Basic BGP Lab Introduction The purpose of this exercise is to: Understand the routing implications of connecting to multiple external domains Learn to configure basic
More informationImplementing MPLS VPNs over IP Tunnels
The MPLS VPNs over IP Tunnels feature lets you deploy Layer 3 Virtual Private Network (L3VPN) services, over an IP core network, using L2TPv3 multipoint tunneling instead of MPLS. This allows L2TPv3 tunnels
More informationLab Guide 2 - BGP Configuration
IXP Workshop Lab Lab Guide 2 - BGP Configuration Objective: The focus of this lab is to connect 8 customers with IXP. Customers are connected with AS17821 as transit and received customer prefixes, also
More informationIntroduction to External Connectivity
Before you begin Ensure you know about Programmable Fabric. Conceptual information is covered in the Introduction to Cisco Programmable Fabric and Introducing Cisco Programmable Fabric (VXLAN/EVPN) chapters.
More informationDeploying Ceph clusters with Salt
Deploying Ceph clusters with Salt FOSDEM 17 Brussels UA2.114 (Baudoux) Jan Fajerski Software Engineer jfajerski@suse.com Saltstack Software to automate the management and configuration of any infrastructure
More informationBGP on IOS: Getting Started
BGP on IOS: Getting Started ISP Workshops Last updated 30 October 2013 1 IOS Good Practices p ISPs should start off with the following BGP commands as a basic template: router bgp 64511 bgp deterministic-med
More informationRemote Access MPLS-VPNs
First Published: August 12, 2002 Last Updated: May 4, 2009 The feature allows the service provider to offer a scalable end-to-end Virtual Private Network (VPN) service to remote users. This feature integrates
More informationMircea Ulinic & Seth House. Network Automation at Scale
Co m pl im ts of Mircea Ulinic & Seth House en Network Automation at Scale Network Automation at Scale Mircea Ulinic and Seth House Beijing Boston Farnham Sebastopol Tokyo Network Automation at Scale
More informationEthernet Fabrics- the logical step to Software Defined Networking (SDN) Frank Koelmel, Brocade
Ethernet Fabrics- the logical step to Software Defined Networking (SDN) Frank Koelmel, Brocade fkoelmel@broc 10/28/2013 2 2012 Brocade Communications Systems, Inc. Proprietary Information ETHERNET FABRICS
More informationPASS4TEST. IT Certification Guaranteed, The Easy Way! We offer free update service for one year
PASS4TEST \ http://www.pass4test.com We offer free update service for one year Exam : JN0-643 Title : Enterprise Routing and Switching, Professional (JNCIP- ENT) Vendor : Juniper Version : DEMO Get Latest
More informationBGP Edge Security for Dummies. Layer , 2603, and others
BGP Edge Security for Dummies hugge@sunet.se Layer 0-3 + 8 Architect @ 1653, 2603, 42649 and others Step 1 of 9 Question: Am I part of the problem (or the solution)? Answer: Are you currently operating
More informationAnsible for Dell EMC Networking Switches
Ansible playbook for leaf-spine architecture Dell EMC Networking Solutions Engineering August 2017 A Dell EMC Technical White Paper Revisions Date Revision Description Author Aug 2017 1.0 Initial Release
More informationRoute Policy Language. Set Object
Route Policy Language as-path-set name [set elements] end-set Set Object Route Policy Object route-policy name [policy statements] community-set name [set elements] end-set AS Path Set Community Set extcommunity-set
More informationBrocade FastIron Flexible Authentication
18 December 2015 Brocade FastIron Flexible Authentication Deployment Guide Supporting FastIron 08.0.40 2015, Brocade Communications Systems, Inc. All Rights Reserved. ADX, Brocade, Brocade Assurance, the
More informationJuniper.Selftestengine.jn0-694.v by.KIM-HL.52q
Juniper.Selftestengine.jn0-694.v2013-10-24.by.KIM-HL.52q Number: jn0-694 Passing Score: 800 Time Limit: 120 min File Version: 18.5 http://www.gratisexam.com/ Exam Code: JN0-694 Exam Name: Enterprise Routing
More informationCisco Press CCIE Practical Studies CCIE Practice Lab: Enchilada Solutions
Cisco Press CCIE Practical Studies CCIE Practice Lab: Solutions Cisco Press CCIE Practical Studies CCIE Practice Lab: LAB Book Chapter Book Page The 18 1161 Overview... 3 Technical Details... 3 Table 54-1:
More informationRobotron: Top-down Network Management at. Yu-Wei Eric Sung, Xiaozheng Tie, Starsky H.Y. Wong, Hongyi Zeng ACM SIGCOMM 2016 August 25, 2016
Robotron: Top-down Network Management at Scale Yu-Wei Eric Sung, Xiaozheng Tie, Starsky H.Y. Wong, Hongyi Zeng ACM SIGCOMM 2016 August 25, 2016 Scale of Facebook Community 1.7 Billion 1 Billion 500 Million
More informationConfiguring Layer 3 Interfaces
This chapter contains the following sections: Information About Layer 3 Interfaces, page 1 Licensing Requirements for Layer 3 Interfaces, page 4 Guidelines and Limitations for Layer 3 Interfaces, page
More informationAttilla de Groot Attilla de Groot Sr. Systems Engineer, HCIE #3494 Cumulus Networks
EVPN to the host Host multitenancy Attilla de Groot Attilla de Groot Sr. Systems Engineer, HCIE #3494 Cumulus Networks 1 Agenda EVPN to the Host Multi tenancy use cases Deployment issues Host integration
More informationMinimizing ARP traffic in the AMS-IX switching platform using OpenFlow
Minimizing ARP traffic in the AMS-IX switching platform using OpenFlow Victor Boteanu Hanieh Bagheri University of Amsterdam System and Network Engineering July 3, 2013 Victor Boteanu, Hanieh Bagheri Minimizing
More informationHigh Availability Synchronization PAN-OS 5.0.3
High Availability Synchronization PAN-OS 5.0.3 Revision B 2013, Palo Alto Networks, Inc. www.paloaltonetworks.com Contents Overview... 3 Device Configuration... 4 Network Configuration... 9 Objects Configuration...
More informationNetDevOps for the Network Dude How to get started with API's, Ansible and Python
DEVNET-1002 NetDevOps for the Network Dude How to get started with API's, Ansible and Python François Caen, Systems Engineer - @f_caen Cisco Spark How Questions? Use Cisco Spark to communicate with the
More informationMySQL Configuration management at Dropbox VIACHESLAV BAKHMUTOV, PETER BOROS PERCONA LIVE AMSTERDAM, 2016
MySQL Configuration management at Dropbox VIACHESLAV BAKHMUTOV, PETER BOROS PERCONA LIVE AMSTERDAM, 2016 Background We are in the middle of a big refactor Main motivations Better integration testing -
More informationF5 BIG-IQ Centralized Management: Local Traffic & Network. Version 5.2
F5 BIG-IQ Centralized Management: Local Traffic & Network Version 5.2 Table of Contents Table of Contents BIG-IQ Local Traffic & Network: Overview... 5 What is Local Traffic & Network?... 5 Understanding
More informationNetwork Automation at Oracle+Dyn NANOG on the Road Boston, 14 Sept 2017
Network Automation at Oracle+Dyn NANOG on the Road Boston, 14 Sept 2017 Carlos Vicente We ve come a long way January 2014: 18 sites and a few hundred devices with configurations manually crafted for years
More informationConfiguring Virtual Private LAN Services
Virtual Private LAN Services (VPLS) enables enterprises to link together their Ethernet-based LANs from multiple sites via the infrastructure provided by their service provider. This module explains VPLS
More informationAPIs and API Design with Python
APIs and API Design with Python Lecture and Lab 5 Day Course Course Overview Application Programming Interfaces (APIs) have become increasingly important as they provide developers with connectivity to
More informationFree4Torrent. Free and valid exam torrent helps you to pass the exam with high score
Free4Torrent http://www.free4torrent.com Free and valid exam torrent helps you to pass the exam with high score Exam : 642-889 Title : Implementing Cisco Service Provider Next-Generation Egde Network Services
More informationHitless Failover and Hitless Upgrade User Guide
Hitless Failover and Hitless Upgrade User Guide This guide describes hitless failover and hitless upgrade, including: Causes and Behaviors of MSM Failover on page 1 Summary of Supported Features on page
More informationIPv6 Capability of Whitebox Networking. Jeremy
IPv6 Capability of Whitebox Networking Jeremy Duncan jduncan@tachyondynamics.com @TachyonDynamics Overview What is Whitebox Networking Pros/Cons The hardware The software The IPv6 Capability and the SDN
More informationBorder Provisioning Use Case in VXLAN BGP EVPN Fabrics - Multi-Site
Border Provisioning Use Case in VXLAN BGP EVPN Fabrics - Multi-Site This chapter explains LAN Fabric border provisioning using EVPN Multi-Site feature. Overview, page 1 Prerequisites, page 1 Limitations,
More informationPractical everyday BGP filtering with AS_PATH filters: Peer Locking
Practical everyday BGP filtering with AS_PATH filters: Peer Locking job@ntt.net Disclaimer: ISPs and their ASNs used in this talk are examples for discussion purpose only. NTT does not admit or deny any
More informationNetwork Automation: Ansible 101
Network Automation: Ansible 101 APRICOT - Feb 28th, 2017 Bronwyn Lewis and Matt Peterson Our assumptions New to the world of DevOps No prior Ansible knowledge Want to stop hand-crafting your network configs
More informationBGP Route Reflector Commands
This chapter provides details of the commands used for configuring Border Gateway Protocol (BGP) Route Reflector (RR). address-family (BGP), on page 2 keychain, on page 5 neighbor (BGP), on page 7 remote-as
More informationAUTOMATION AT THE NETWORK LAYER. Rick Shermdog Sherman and Scott Garman Puppet Labs
AUTOMATION AT THE NETWORK LAYER Rick Shermdog Sherman and Scott Garman Puppet Labs Brief Intro to Puppet Puppet is a configuration management and application orchestration tool Automate IT deployments
More informationApstra Operating System AOS
Apstra Operating System AOS 2.3 CHALLENGES Network admins manually track and verify thousands of elements, even for a small spineleaf networks with a handful of devices. SOLUTION Apstra AOS A turn-key
More informationR&E ROUTING SECURITY BEST PRACTICES. Grover Browning Karl Newell
R&E ROUTING SECURITY BEST PRACTICES Grover Browning Karl Newell RFC 7454 BGP Operations & Security Feb, 2015 https://tools.ietf.org/html/rfc7454 [ 2 ] Agenda Background / Community Development Overview
More informationBGP MIGRATIONS IN A LIVE DATACENTER
BGP MIGRATIONS IN A LIVE DATACENTER CHRIS WOODFIELD @CWOODFIELD OSPF - THE RIGHT APPROACH AT THE TIME Layer 3, Multi-area topology Area 0.0.0.0 SPINE1 SPINE2 SPINE3 SPINE4 CL!-1 CL1-2 CL2-1 CL2-2 EDGE1
More informationRobust Routing Policy Architecture. Job Snijders NTT Communications
Robust Routing Policy Architecture Job Snijders NTT Communications job@ntt.net Robust Routing Policy Architecture Conceptual model of routing policy Routing policy terminology Routing policy design patterns
More informationConfiguring the Cisco OpenFlow Agent
All tasks in this section require the fulfillment of the prerequisites listed in Prerequisites for Cisco OpenFlow Agent. Enabling the Cisco OpenFlow Agent, page 1 Configuring Physical Device Parameters,
More informationModule 10 An IPv6 Internet Exchange Point
ISP/IXP Networking Workshop Lab Module 10 An IPv6 Internet Exchange Point Objective: To investigate methods for connecting to an Internet Exchange Point. Prerequisites: Modules 1 to 4, and the Exchange
More informationSalt Administration II Training Syllabus
Salt Administration II Training Syllabus This is the second course in the SaltStack Administration training series. It builds on the concepts of the previous course by presenting additional topics above
More informationHPE FlexFabric 5940 Switch Series
HPE FlexFabric 5940 Switch Series EVPN Configuration Guide Part number: 5200-2002b Software version: Release 25xx Document version: 6W102-20170830 Copyright 2017 Hewlett Packard Enterprise Development
More informationIntelligent WAN Multiple VRFs Deployment Guide
Cisco Validated design Intelligent WAN Multiple VRFs Deployment Guide September 2017 Table of Contents Table of Contents Deploying the Cisco Intelligent WAN... 1 Deploying the Cisco IWAN Multiple VRFs...
More informationHierarchical Fabric Designs The Journey to Multisite. Lukas Krattiger Principal Engineer September 2017
Hierarchical Fabric Designs The Journey to Multisite Lukas Krattiger Principal Engineer September 2017 A Single Fabric, a Single Data Center External Layer-3 Network Pod 1 Leaf/ Topologies (aka Folded
More informationManaging Service Requests
CHAPTER 8 This chapter describes how to manage Prime Fulfillment service requests through the Service Request Manager window. It contains the following sections: Accessing the Service Request Manager Window,
More informationProgrammability and Automation on Cisco Nexus Platforms
Programmability and Automation on Cisco Nexus Platforms Krishna Chaitanya, Solutions Architect Cisco Spark How Questions? Use Cisco Spark to communicate with the speaker after the session 1. Find this
More informationMulticast VLAN, page 1 Passive Clients, page 2 Dynamic Anchoring for Clients with Static IP Addresses, page 5
Multicast VLAN, page 1 Passive Clients, page 2 Dynamic Anchoring for Clients with Static IP Addresses, page 5 Multicast VLAN Information About Multicast Optimization Prior to the 7.0.116.0 release, multicast
More informationIPv6 DEPLOYMENT GLOBAL TRANSIT COMMUNICATIONS. Presented by Mark Tinka Chief Network Architect Global Transit Kuala Lumpur, Malaysia
IPv6 DEPLOYMENT GLOBAL TRANSIT COMMUNICATIONS Presented by Mark Tinka Chief Network Architect Global Transit Kuala Lumpur, Malaysia IPv6: The Interest IPv6: The Interest Main reason; readiness for effects
More informationRouter 6000 R17 Training Programs. Catalog of Course Descriptions
Router 6000 R7 Training Programs Catalog of Course Descriptions Catalog of Course Descriptions INTRODUCTION... 3 IP NETWORKING... 4 IP OVERVIEW & FUNDAMENTALS... 8 IP ROUTING OVERVIEW & FUNDAMENTALS...0
More informationBraindumpStudy. BraindumpStudy Exam Dumps, High Pass Rate!
BraindumpStudy http://www.braindumpstudy.com BraindumpStudy Exam Dumps, High Pass Rate! Exam : 642-883 Title : Deploying Cisco Service Provider Network Routing (SPROUTE) Vendor : Cisco Version : DEMO 1
More informationConnecting to a Service Provider Using External BGP
Connecting to a Service Provider Using External BGP This module describes configuration tasks that will enable your Border Gateway Protocol (BGP) network to access peer devices in external networks such
More informationBGP Origin AS Validation
The feature helps prevent network administrators from inadvertently advertising routes to networks they do not control. This feature uses a Resource Public Key Infrastructure (RPKI) server to authenticate
More informationBIRD Internet Routing Daemon. CZ.NIC z. s. p. o. Ondřej Filip / Oct 9, 2009 RIPE 59 / Lisbon
BIRD Internet Routing Daemon CZ.NIC z. s. p. o. Ondřej Filip / ondrej.filip@nic.cz Oct 9, 2009 RIPE 59 / Lisbon 1 Project history Project started in 1999 Seminar project Charles University Prague Project
More information